Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
File:                     e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft (raw, json)
Hash identifier:          5h37QUlhUBrAF+z4wKJ1xjFltWLlPM2Z1E+voAWYl8k=
Subject key identifier:   05:72:04:B8:07:7C:1C:27:D5:A3:A4:F5:92:95:5A:74:38:18:7C:50
Authority key identifier: 7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C
Certificate issuer:       /CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
Certificate serial:       0194C3876EE03C4C668C9E0EAE55FB3087E0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
Manifest number:          03EA
Signing time:             Sat 01 Feb 2025 22:00:20 +0000
Manifest this update:     Sat 01 Feb 2025 22:00:20 +0000
Manifest next update:     Sun 02 Feb 2025 22:00:20 +0000
Files and hashes:         1: e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl (hash: uwvaynUZMD5LOtk9dGD6lO5DJhstCir+uGzGGOx7BTc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 02 Feb 2025 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:c3:87:6e:e0:3c:4c:66:8c:9e:0e:ae:55:fb:30:87:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
        Validity
            Not Before: Feb  1 22:00:20 2025 GMT
            Not After : Feb  2 22:00:20 2025 GMT
        Subject: CN=057204b8077c1c27d5a3a4f592955a7438187c50
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:db:35:bf:b1:13:9c:85:37:a4:9b:a3:2c:16:
                    f9:47:ae:da:a2:e9:b1:27:ad:02:07:c2:7e:b2:bb:
                    10:3f:79:9b:d3:f4:34:9d:fb:03:bf:85:d9:8b:de:
                    ed:db:2e:73:5f:ce:4b:fc:39:45:c2:45:55:f5:2e:
                    4d:05:21:06:ab:94:b5:7f:1f:26:ca:39:75:a7:c1:
                    3b:35:df:10:93:1a:0d:9c:f9:db:98:14:60:71:5b:
                    8e:e6:8e:46:a8:0d:58:62:d9:dd:73:5e:26:dd:5d:
                    a5:3c:bc:e6:67:eb:53:a5:9c:84:fa:bb:f2:b2:d2:
                    c7:30:b9:da:1d:69:c3:3d:d8:7f:ac:4b:ec:db:b2:
                    95:4e:f7:e3:58:4b:db:a5:5b:5a:71:cf:71:10:90:
                    13:3c:bc:c1:63:d6:17:7e:78:ac:bc:07:e9:6f:01:
                    b0:03:64:a2:d9:03:0e:a6:af:04:1d:cf:67:3d:e8:
                    fa:9e:29:eb:81:e9:fd:28:31:f4:82:a7:f3:b7:de:
                    2a:3c:b5:04:82:88:94:8b:b6:a7:69:89:b5:28:7f:
                    60:2e:85:6e:a8:df:8d:fd:d9:3a:8c:c7:d5:75:9a:
                    5b:52:7a:af:39:e9:ed:ed:31:8b:98:25:37:24:f7:
                    4d:94:36:46:e9:c5:fa:fc:d9:0b:da:56:f9:87:1c:
                    d7:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:72:04:B8:07:7C:1C:27:D5:A3:A4:F5:92:95:5A:74:38:18:7C:50
            X509v3 Authority Key Identifier:
                keyid:7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:69:15:90:b7:ad:c3:82:2d:18:32:4d:6e:ac:45:c8:5b:a7:
         a2:26:8f:33:d8:0e:b1:9f:5d:43:60:cb:e4:7d:d9:c8:c6:ce:
         2f:5d:cf:75:db:7c:15:07:aa:ac:af:1b:96:81:db:23:27:9e:
         cc:50:6d:98:1f:fe:70:1b:1c:c6:6c:21:6c:c0:56:18:1e:7e:
         84:5d:bb:29:be:f1:90:32:11:d8:c9:c6:d0:43:af:d2:f0:97:
         09:bf:f3:dd:4c:7e:cb:5e:7e:1b:06:7d:79:a9:33:57:37:b3:
         c4:c5:2f:ba:d2:a7:c3:4f:f8:58:8c:72:5f:8b:06:6c:4f:f6:
         0c:12:03:7f:96:da:35:da:e2:08:6c:6e:2b:6a:b4:95:8e:53:
         f0:e4:d8:93:d8:07:51:dd:96:c9:86:42:5f:57:b1:5f:b0:0a:
         ae:67:1b:19:a4:d2:a6:0d:c6:03:6e:3d:8f:19:53:1c:35:b9:
         dd:98:22:99:92:2b:9f:08:7e:91:7f:0c:b3:10:a7:0a:21:13:
         4c:f0:90:9d:70:99:16:8e:2a:03:12:0f:4b:e7:7d:8f:97:70:
         11:12:a6:24:5d:f1:03:fe:84:da:64:5a:f4:ab:f9:c3:ac:d6:
         f3:67:a5:57:5e:49:d3:79:c0:a2:18:22:c8:8e:a3:fe:83:b0:
         be:f3:ea:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTDh27gPExmjJ4OrlX7MIfgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiYzdiZTUyMWQxN2E2YTU5MmNjNjFmNzkxNGMyNWYxNjk1
N2NjOWMwHhcNMjUwMjAxMjIwMDIwWhcNMjUwMjAyMjIwMDIwWjAzMTEwLwYDVQQD
EygwNTcyMDRiODA3N2MxYzI3ZDVhM2E0ZjU5Mjk1NWE3NDM4MTg3YzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNs1v7ETnIU3pJujLBb5R67aoumx
J60CB8J+srsQP3mb0/Q0nfsDv4XZi97t2y5zX85L/DlFwkVV9S5NBSEGq5S1fx8m
yjl1p8E7Nd8QkxoNnPnbmBRgcVuO5o5GqA1YYtndc14m3V2lPLzmZ+tTpZyE+rvy
stLHMLnaHWnDPdh/rEvs27KVTvfjWEvbpVtacc9xEJATPLzBY9YXfnisvAfpbwGw
A2Si2QMOpq8EHc9nPej6ninrgen9KDH0gqfzt94qPLUEgoiUi7anaYm1KH9gLoVu
qN+N/dk6jMfVdZpbUnqvOent7TGLmCU3JPdNlDZG6cX6/NkL2lb5hxzXNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAVyBLgHfBwn1aOk9ZKVWnQ4GHxQMB8GA1UdIwQY
MBaAFHvHvlIdF6alksxh95FMJfFpV8ycMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZThlLVVoMFhwcVdTekdIM2tVd2w4V2xYekp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lMmJlNWMtMGU2Ny00ZjgyLTk3YzIt
MTA1ZDgwMDIxNDlkLzEvZThlLVVoMFhwcVdTekdIM2tVd2w4V2xYekp3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9lMmJlNWMtMGU2Ny00ZjgyLTk3YzItMTA1ZDgwMDIxNDlk
LzEvZThlLVVoMFhwcVdTekdIM2tVd2w4V2xYekp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqGkVkLet
w4ItGDJNbqxFyFunoiaPM9gOsZ9dQ2DL5H3ZyMbOL13Pddt8FQeqrK8bloHbIyee
zFBtmB/+cBscxmwhbMBWGB5+hF27Kb7xkDIR2MnG0EOv0vCXCb/z3Ux+y15+GwZ9
eakzVzezxMUvutKnw0/4WIxyX4sGbE/2DBIDf5baNdriCGxuK2q0lY5T8OTYk9gH
Ud2WyYZCX1exX7AKrmcbGaTSpg3GA249jxlTHDW53ZgimZIrnwh+kX8MsxCnCiET
TPCQnXCZFo4qAxIPS+d9j5dwERKmJF3xA/6E2mRa9Kv5w6zW82elV15J03nAohgi
yI6j/oOwvvPqvA==
-----END CERTIFICATE-----